Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1OA6LkfL77Z3VgyDYhZ4TjOuvwg.roa
File: 1OA6LkfL77Z3VgyDYhZ4TjOuvwg.roa (raw, json)
Hash identifier: I6BlcPRkr5kOVQjvovAb2Nt+aBkMXAF9HvMdDCbU4fI=
Subject key identifier: D4:E0:3A:2E:47:CB:EF:B6:77:56:0C:83:62:16:78:4E:33:AE:BF:08
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1OA6LkfL77Z3VgyDYhZ4TjOuvwg.roa
Signing time: Thu 15 Sep 2022 02:40:03 +0000
ROA not before: Thu 15 Sep 2022 02:40:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D4E03A2E47CBEFB677560C836216784E33AEBF08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a8:a0:0a:88:5f:06:32:4e:14:d4:c9:0d:cb:
da:e3:8c:a8:e0:54:be:11:42:e8:8b:fd:4a:b2:61:
fd:03:c9:bf:1a:fd:bc:eb:f8:f2:62:c3:bd:b1:cc:
af:cd:15:04:c5:68:9f:e1:07:37:a9:25:8d:74:75:
a5:53:73:da:0f:27:14:37:b2:f6:9f:bc:a6:09:e9:
5d:61:c9:c3:93:df:62:f4:d9:c5:41:b8:96:c1:70:
61:a7:28:53:fc:d9:48:1d:cc:65:ef:b0:91:a8:f8:
a2:4a:44:53:de:ee:38:2a:3f:f0:2e:13:80:98:bf:
3d:eb:9b:4b:55:df:7b:b9:12:0e:dd:89:9e:71:66:
21:a9:3c:d7:79:5a:0c:3d:d4:3a:77:bb:39:d7:96:
11:6a:1e:12:a0:05:18:19:79:97:b9:c2:1d:ed:73:
7e:9e:82:d9:ad:54:8a:27:54:84:ad:69:42:33:d4:
96:1f:51:49:0d:4f:f2:11:96:97:ad:47:20:ca:4b:
7d:f5:49:55:bd:4c:f0:cc:e7:e0:f2:d8:09:88:2c:
9f:4c:68:3b:9c:06:79:57:84:cd:76:37:98:cc:be:
39:a5:b7:de:fd:1c:63:e0:2a:86:78:a8:8d:41:e9:
2f:ba:8b:21:34:0b:24:36:12:e1:af:4c:70:c6:81:
7f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E0:3A:2E:47:CB:EF:B6:77:56:0C:83:62:16:78:4E:33:AE:BF:08
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1OA6LkfL77Z3VgyDYhZ4TjOuvwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9a:e8:4c:60:29:18:30:c6:8a:a3:05:7e:30:85:3c:03:86:2c:
aa:f3:b2:30:20:3d:d7:e7:78:97:7f:44:b1:ce:71:49:bb:de:
a0:75:46:f0:3c:f3:ba:d7:d3:0f:57:58:97:21:5a:6f:22:bc:
af:e2:d7:e1:a3:c8:36:bc:33:0a:72:07:03:2d:0a:51:0b:c7:
ac:59:11:ac:1a:86:2d:ee:e5:f7:4f:3e:d7:ba:f9:6f:61:47:
97:c3:52:5c:62:2b:3b:96:e0:0c:b8:85:08:d6:26:dc:7f:13:
2b:77:cc:64:8f:1f:0f:fd:72:ef:c7:d6:99:9b:30:c8:0f:05:
c3:15:88:92:cd:03:15:86:38:74:38:4a:b2:81:b1:aa:eb:45:
9f:77:e6:9e:21:de:c8:aa:56:38:d0:ff:ea:f0:6b:6e:a1:bf:
00:13:59:9d:05:3d:04:db:7a:5c:4f:01:f2:27:1d:c5:11:25:
37:e2:85:62:d3:ac:df:72:cb:c6:66:77:84:d0:cc:46:07:15:
66:d4:a6:ce:da:65:35:32:9f:bb:9e:b1:d2:30:09:59:f2:5a:
12:a4:75:6e:32:00:b3:53:ba:53:01:ee:3f:0d:f1:ab:62:f4:
54:ff:a3:80:a0:f7:84:07:5b:c0:87:07:6e:73:68:ae:44:9e:
48:73:38:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org